High
CVE-2025-13371
The MoneySpace plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.13.9. This is due to the plugin storing full payment card details (PAN, car…
Tag: PCI-DSS
All CVEs associated with "PCI-DSS". Page 1/1 • 2 CVEs.
About “PCI-DSS”
A curated feed of “PCI-DSS”-related CVEs appears below. We currently track 2 CVEs for this tag (all time). In the last 365 days, 1 were published. Average CVSS is 8.1 (all time; 8.6 over 365d), and 100% are rated High/Critical (all time). Top CWEs (last 365 days): CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor.
In our taxonomy this topic maps to a LOW impact class. Vendor advisories and release notes are key. Verify compatibility matrices, prefer supported long term versions, and stage rollouts with monitoring. Use the filters below to sort by CVSS, risk and CWE. Each detail page highlights vendor advisories and mitigation tips.
Support & lifecycle: pci-dss
This table shows recent release cycles and their projected end-of-life. Data source: endoflife.date.
| Cycle | Release | Latest | EOL | LTS |
|---|---|---|---|---|
| 4.0.1 | - | - | ||
| 4.0 | - | Expired | ||
| 3.2.1 | - | Expired | ||
| 3.2 | - | Expired | ||
| 3.1 | - | Expired |
Maintained Soon (≤ 180 days) Expired
Subscribe lifecycle: RSS (expired) · ICS
Subscribe CVEs: RSS for “PCI-DSS” · RSS (High+Critical only)
CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).
CVSS ≥ 0.0
2026-01-07
2021-08-06
High
CVE-2021-38155
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking (related to PCI DSS features).…